Solved

How to restrict inbound and outbound internet e-mail traffic from and to active directory group

Posted on 2008-09-29
4
407 Views
Last Modified: 2011-10-19
We pretend to allow only a list of inbound/outbound emails address to an Active Directory Group.

It's factible in a Exchange 2003 scenario?

user@mydomain.com will permit only e-mails from user@partner.com, user@partner2.com
user@mydomain.com will send e-mails only to user@partner.com, user@partner2.com

This users are grouped in Active directory.  The contacts of partners exists in AD

any suggestion?

BADBOY
0
Comment
Question by:bad3000
  • 2
  • 2
4 Comments
 
LVL 16

Assisted Solution

by:robrandon
robrandon earned 40 total points
Comment Utility
On the Exchange General tab for the DL and Contacts you can set which accounts it can receive from.  Just add such accounts to that listbox.

0
 
LVL 1

Author Comment

by:bad3000
Comment Utility
I've set as is shown in the attached file
It started to work for inbound email after MSExchangeSA service was restarted.

But how i tell Exchange to send email only to a list, there is no setting here to "Deliver only to"

thnks
exchange-user.jpg
0
 
LVL 16

Assisted Solution

by:robrandon
robrandon earned 40 total points
Comment Utility
So you want to setup an account that can only send to particular addresses?  I'm not sure that is possible.

I thought you were trying to restrict the sending to a DL and to Contacts.  Both, the DL and the Contacts will have the properties window in your screenshot so you can restrict who can send to them.

0
 
LVL 1

Accepted Solution

by:
bad3000 earned 0 total points
Comment Utility
For Outbound filtering:
- We set a Outbound Rule in the gateway antispam server (Symantec Mail Security for SMTP)
- We apply the action of delete the message when it came from "Restricted Outbound Users" LDAP Group in sync with AD GC
- We set a exception when Recipient Envelope has one of the authorized domains
- It cannot be set user by user, but the outbound rule applies for any LDAP group, so i can restrict some groups with only one member.
- I can apply authorized domains o specific e-mail addresses for any LDAP Group

For Inbound Filtering:
robrandon and the suggestion stated was perfect.
- we also need to permit internal mails and some external contacts only so we cannot mark "Authenticated Users Only"
- we created a Exchange Query Based Group with all internal users in a LDAP Query and we added it to the dialog box "only from"

that's all

BADBOY
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Synchronize a new Active Directory domain with an existing Office 365 tenant
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now